Apple says no Wi-Fi flaw: Apple's public relations director Lynn Fox says that the Wi-Fi exploit demonstrated two weeks ago in a video shown at the Black Hat 2006 conference does not represent a flaw in Apple's software or device firmware. Apple told Macworld that the demonstrated exploit uses a third-party wireless driver for a Wi-Fi USB adapter. Neither the driver nor the chips are the same as those used by Apple in Mac OS X on a MacBook.
Further, Fox told Macworld that Apple has not received code or a demonstration that shows a flaw in shipping hardware and software. The researchers have changed the message on the page at SecureWorks, the consulting site at which they provide services, to note that Apple code wasn't involved in their demonstration.
The two researchers who presented the hack say that a flaw in the way in which wireless drivers from several manufacturers hand off data to the operating system can allow exploits in which a machine can be compromised to execute arbitrary code, such as a "bot," a remotely triggered piece of software used by spammers or attackers.
This was apparently true for Intel Centrino adapters, as that firm released update drivers in July that prevent this form of exploit. The researchers say they had nothing to do with Intel's update, but their exploit has similar attributes, and that helps make their case more credible.